NVIDIA OpenShell로 자율적인 자기 진화형 에이전트를 더욱 안전하게 구동하세요
…모든 프롬프트 주입(Prompt Injection)은 잠재적인 인증 정보 유출로 이어지며, 클로가 설치하는 모든 제3자 기술은 파일 시스템 접근 권한을 가진 검증되지 않은 바이너리와 다를 바 없습니다. 클로가 생성하는 모든 하위 에이전트는…
Search
People also ask
How do attackers poison AI systems in this stage?
In the poison stage, the attacker’s goal is to place malicious inputs into locations where they will ultimately be processed by the AI model. Two primary techniques dominate: Direct prompt injection: The attacker is the user, and provides inputs via normal user interactions. Impact is typically scoped to the attacker’s session but is useful for probing behaviors. Indirect prompt injection: The attacker poisons data that the application ingests on behalf of other users (e.g., RAG databases, shared documents). This is where impact scales. Text-based prompt infection is the most common technique
Modeling Attacks on AI-Powered Apps with the AI Kill Chain Framework | NVIDIA Technical BlogWhat is a multistage pipeline for AI agent customization?
In practice, the most effective agent customization combines multiple techniques in sequence. The stages of a representative pipeline are outlined below. Start with system prompts, tool and skill definitions, and retrieval to establish baseline behavior.
Mastering Agentic Techniques: AI Agent Customization | NVIDIA Technical BlogWhat happens during the recon stage of the AI Kill Chain?
In the recon stage, the attacker maps the system to plan their attack. Key questions an attacker is asking at this point include: What are the routes by which data I control can get into the AI model? What tools, Model Context Protocol (MCP) servers, or other functions does the application use that might be exploitable? What open source libraries does the application use? Where are system guardrails applied, and how do they work? What kinds of system memory does the application use? Recon is often interactive. Attackers will probe the system to observe errors and behavior. The more observ
Modeling Attacks on AI-Powered Apps with the AI Kill Chain Framework | NVIDIA Technical BlogHow do attackers hijack AI model behavior once poisoning succeeds?
The hijack stage is where the attack becomes active. Malicious inputs, successfully placed in the poison stage, are ingested by the model, hijacking its output to serve attacker objectives. Common hijack patterns include: Attacker-controlled tool use: Forcing the model to call specific tools with attacker-defined parameters. Data exfiltration: Encoding sensitive data from the model’s context into outputs (e.g., URLs, CSS, file writes). Misinformation generation: Crafting responses that are deliberately false or misleading. Context-specific payloads: Triggering malicious behavior only in tar
Modeling Attacks on AI-Powered Apps with the AI Kill Chain Framework | NVIDIA Technical BlogNVIDIA-Verified Agent Skills Provide Capability Governance for AI Agents | NVIDIA Technical Blog
…SkillSpector checks conventional software risks such as vulnerable dependencies, suspicious scripts, dangerous code patterns, credential access, and data exfiltration paths. SkillSpector also checks agent-specific risks, such as hidden instructions, prompt injection…
Building NVIDIA Nemotron 3 Agents for Reasoning, Multimodal RAG, Voice, and Safety | NVIDIA Technical Blog
…They must also be applicable in use cases like enterprise copilots and user-generated content (think dating apps or social media), and detect prompt injection in agentic systems such as healthcare, where…
How NVIDIA Dynamo 1.0 Powers Multi-Node Inference at Production Scale | NVIDIA Technical Blog
…has built an integration that injects agentic hints for Dynamo’s Router, validating its composable architecture. Inspired contributions from across the AI ecosystem: Developers across the AI community have contributed to Dynamo…
To show you the most relevant results, we’ve omitted some entries very similar to those already shown. Repeat the search with the omitted results included.